AWS Firewall Manager

Centrally configure and manage firewall rules across your accounts

Use a central administrator account to manage firewall rules across multiple AWS accounts.

Deploy managed rules, such as pre-configured WAF rules on your applications, across accounts.

Automatically enforce your defined security policies across existing and newly created resources.

Centrally deploy baseline security group rules to protect your virtual private clouds (VPCs).

How it works

AWS Firewall Manager is a security management service that allows you to centrally configure and manage firewall rules across your accounts and applications in AWS Organizations. As new applications are created, Firewall Manager makes it easier to bring new applications and resources into compliance by enforcing a common set of security rules.

Diagram showing how Firewall Manager lets you write rules, track compliance and reporting, and then replicate the rules across accounts.

Use cases

Protect applications hosted on EC2 instances

Enforce a primary set of security group rules with a common security group policy, while also deploying application-specific rules.

Learn more about central monitoring »

Deploy tools at scale to protect data

Create, configure, and maintain firewalls with common security policies across accounts and VPCs in your AWS Organizations structure.

Learn more about AWS Network Firewall »

Continually audit resources

Audit and clean unused or redundant security groups, and audit and control security group rules to identify high-risk rules.

Learn more about continual auditing »

How to get started

Learn more about Firewall Manager

Explore key concepts, step-by-step instructions, and API operations.

Contact an expert

Learn how to centrally configure and manage firewall rules.

Get started with Firewall Manager

Build firewalls, create security policies, and enforce those policies.


Explore more of AWS